Configuration of ADFS
Start course

If your organization uses Active Directory (AD) for its identity management, and you would like to use those identities in Azure or Microsoft 365, then you will need to implement Azure Active Directory Connect.

This course is divided into three sections. The first section is on designing an identity strategy. In this section, we'll look at our AD identities and consider what work needs to be done and what we need to think about ahead of time. The second section is on implementing identity synchronization using AD Connect. We will consider what needs to be synced and what authentication options are available. In the last section, we'll look at managing identity synchronization using Azure AD Connect. We'll look at what it takes to manage and sync and reconfigure options after AD Connect has been initially configured.

Learning Objectives

  • Design a hybrid identity solution
  • Implement Azure Active Directory Connect
  • Manage synchronized identities

Intended Audience

  • Azure administrators
  • Microsoft 365 administrators


  • Basic understanding of Active Directory and Office 365
  • To do the examples yourself, you will need an on-premises Active Directory structure and an Azure subscription

One of the other options available in the Azure AD Connect configuration wizard is AD FS or Azure Federation Services configuration. Now it's slightly outside of the realms of this course, but it's well worth knowing that it's there. 

So, if we go into the wizard here and click on Configure, we have an option for Change user sign-in. So, if we click that and go to Next, give it our global administrator password and credentials again. And we get the user sign-in options that we got in the initial configuration. So, we can now click on Federation with AD FS here and it gives us a warning about what we need available. And we don't have these things configured. So, we're not going to be able to go a whole way through the wizard here but, let's click Next to see what we get. 

So, it's going to ask us for the on-premise AD credentials. And then it's going to start asking us for certificate files and proxy servers, et cetera. It's just very similar to the configuration we did before where we had to put in service accounts, et cetera. Now, I'm not going to go any further with this because it's outside the realms of this course, but it's well worth knowing that this is here and knowing the options that are available to us.

About the Author

Matt is a freelance system administrator with over 20 years of experience in IT. His current focus is on the great features of Microsoft Azure and Office 365. He’s always had a fascination for anything techie and loves learning and sharing that knowledge.